Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

Use an instance of an account as the default gateway for other accounts.

0

Hi guys, how are you? I need help with a problem that may be simple. I have a networking account on AWS, which has two ec2 instances, which are 2 fortigates firewalls and they are in the sa-east-1 region, and I do all my throughput through the firewalls, I have a subnet for my firewall to use from igw , and the other subnet I leave the applications. However, I have other accounts that are in us-east-1 and I need their throughput to be through the same network account, does anyone have any ideas on how I can do this please?

Themen
Vernetzung & Bereitstellung von Inhalten
Tags
Amazon VPCAWS Direct ConnectAWS Transit GatewayVirtuelles privates VPC-Gateway
Sprache
English
leonardo
gefragt vor 4 Monaten490 Aufrufe
1 Antwort
0

Hi,

A Transit Gateway properly configured for cross-account traffic is what you are looking for: https://docs.aws.amazon.com/vpc/latest/tgw/tgw-transit-gateways.html

It will allow your bastion hosts to receive traffic in one account and route it to others.

This blog post implements a use case very close to your goal: https://aws.amazon.com/blogs/networking-and-content-delivery/creating-a-single-internet-exit-point-from-multiple-vpcs-using-aws-transit-gateway/

Best,

Didier

profile pictureAWS
EXPERTE
Didier_Durand
beantwortet vor 4 Monaten
  • leonardo
    vor 4 Monaten

    This helps, but the problem is that my network account is in the sa-east-1 region and the other accounts are in us-east-1, I know that it is not possible to share the same transit gateway for the other accounts because they are in different regions.

  • Brettski-AWS EXPERTE
    vor 4 Monaten

    You can peer Transit Gateways between regions - but I would question why you would do that for this particular use case. The extra latency for users in the sa-east-1 region will be very high. There are also inter-region data transfer costs.

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt